Doc Code: AP.PRE.REQ 

Under the Paperwork Reduction Act of 1995, no persons ar 



PTO/SB/33 (07-05) 
Approved for use through xx/xx/200x. OMB 0651-OOxx 
U.S. Patent and Trademark Office; U.S. DEPARTMENT OF COMMERCE 
espond to a collection of information unless it displays a valid OMB control numl 



PRE-APPEAL BRIEF REQUEST FOR REVIEW 



Docket Number (Optional) 
00100.00.0370 



I hereby certify that this correspondence is being forwarded via 
electronic submission to: 

Electronic Business Center, Commissioner for Patents, Mail Stop AF 


Application Number 
09/586,907 


Filed 

June 5, 2000 


Siqnature ^^Cc^z£- ^T^J^-^A^ 


First Named Inventor 

Rajesh G. Shakkarwar 


Art Unit 


Examiner 


Typed or printed Christine A. Wright 


2131 


Syed Zia 



Applicant requests review of the final rejection in the above-identified application. No amendments are being filed 
with this request. 



This request is being filed with a notice of appeal. 



The review is requested for the reason(s) stated on the attached sheet(s). 
Note: No more than five (5) pages may be provided. 



| | applicant/inventor. 

□ assignee of record of the entire interest. 
See 37 CFR 3.71 . Statement under 37 CFR 3.73(b) is enclosed. 
(Form PTO/SB/96) 

\\/\ attorney or agent of record. ... 

Registration number Q<+,<i\<* 



Signature 
Christopher J. Reckamp 



Typed or printed n: 
312-609-7599 



| | attorney or agent acting under 37 CFR 1 .34. 
Registration number if acting under 37 CFR 1 .34 _ 



Telephone number 



NOTE: Signatures of ail the inventors or assignees of record of the entire interest or their representative(s) are required. 
Submit multiple forms if more than one signature is required, see below*. 




"Total of _J forms are submitted. 



This collection of information is required by 35 U.S.C 132. The information is required to obtain or retain a benefit by the public which is to file (and by the USPTO 
to process) an application. Confidentiality is governed by 35 U.S.C. 122 and 37 CFR 1.11, 1.14 and 41.6. This collection is estimated to take 12 minutes to 
complete, including gathering, preparing, and submitting the completed application form to the USPTO. Time will vary depending upon the individual case. Any 
comments on the amount of time you require to complete this form and/or suggestions for reducing this burden, should be sent to the Chief Information Officer, 
U.S. Patent and Trademark Office, U.S. Department of Commerce, P.O. Box 1450, Alexandria, VA 22313-1450. DO NOT SEND FEES OR COMPLETED 
FORMS TO THIS ADDRESS. SEND TO: Mail Stop AF, Commissioner for Patents, P.O. Box 1450, Alexandria, VA 22313-1450. 



If you need assistance in completing the form, call 1-800-PTO-9199 and select option 2. 



PATENT APPLICATION 



IN THE UNITED STATES PATENT AND TRADEMARK OFFICE 



Applicant: Rajesh G. Shakkarwar 
Serial No.: 09/586,907 
Filing Date: June 5, 2000 



Examiner: Syed Zia 

Art Unit: 2131 

Docket No.: 00100.00.0370 



Confirmation No.: 9317 

Title: METHOD AND APPARATUS FOR PROTECTION OF COMPUTER ASSETS 
FROM UNAUTHORIZED ACCESS 

Mail Stop AF 
Commissioner for Patents 
P.O. Box 1450 
Alexandria, VA 22313-1450 



Applicant respectfully submits that the Examiner's rejections include clear errors because 
one or more claim limitations are not met by the cited references and the references do not teach 
what the Examiner alleges. 

Claims 1-12, 19-21, 24, 27, 33-39, 45-47, 50, 53, 59-61, and 64-73, stand rejected under 35 
U.S.C. 102(b) as being anticipated by U.S. Patent No. 5,586,301 (Fisherman et al.). The Fisherman 
reference is directed to a personal computer hard disk protection system. The system comprises 
protection programs that interpret logical drives of the hard disk as a fixed set of zones for a 
particular user wherein each of the fixed set of zones each has respective access rules. The system 
includes a hardware module (PPSM) responsive to the protection programs and operable to allow or 
deny access to the hard disk based on the access rules. Fisherman et al. do not teach or suggest, 
among other things, determining if an access request is a security risk, then determining the state of 
a switch, and then determining whether to execute a determined security risk access request based 
on a determined switch state. Fisherman et al. also do not teach or suggest including in a south 
bridge a protection engine operable to authenticate an interface control command and to selectively 
allow or inhibit execution of an interface control command by the interface controller depending on 
whether or not the source of the interface control command is authentic. 
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Applicant's claimed invention, as recited in independent Claims 1, 64, and 70, is directed to 
protecting computer assets from unauthorized access. Applicant claims determining if an interface 
control command is a security risk and, if so, then determining the state of a switch. The interface 
control command that is identified as security risk is then either inhibited or executed based on the 
determined state of the switch (See, for example, Claim 1, lines 5-11). The cited portion of 
Fisherman et al. is silent as to determining the state of a switch after an interface control command 
has been determined to be a security risk and using a switch state to further determine whether to 
allow or to disallow a hard drive access request or other operation that is known to violate an access 
rule. If Fisherman et al. detects an access request that violates an access rule, this access operation 
is simply not performed and an error code is returned. The disposition of the violating access 
request does not depend on determining a switch state (see, for example, column 6, line 62 through 
column 7, line 2) after a threatening interface control command has been detected. Therefore, 
features of Applicant's claimed invention are not taught or suggested by Fisherman et al. 
Accordingly, independent Claims 1, 64, and 70 are allowable, and the dependent claims add 
additional novel and non-obvious subject matter and should likewise be allowable. 

In addition, Fisherman et al. describes a system that switches on each request. It switches, 
for example, from an active to a passive mode based on a request. (See for example, column 6 and 
column 8). Applicant claims a different operation which must be disclosed in its entirety in the 
cited reference or the claim is in condition for allowance. Since, as noted above, the various 
limitations of the claims are not disclosed, Applicant respectfully submits that the rejection must be 
withdrawn. 

In addition, other claims are also not disclosed in Fisherman et al. For example, claims 5 

and 6 require that determining the state of a switch includes determining the state of an electrical 

switch or determining the state of a software based switch. As to claim 5, for example, the office 

action cites column 4, lines 29-30 of Fisherman et al. However, the cited portion is silent as to any 
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physical switch. Instead, the cited portion actually refers to a module being switched to a passive 
mode after it is determined what type of program is attempting to change the status indicating that a 
key program is active. There is no electrical switch or physical switch described nor is there any 
determining of any state of a switch as claimed after a threat has been detected. 

Applicant respectfully submits that the cited portion of Fisherman et al. fails to disclose, 
inter alia, determining if an interface control command is a security risk, determining a switch state 
in response to the detected threat, and then determining whether to execute a determined security 
risk access request based on a determined switch state. 

As to independent Claims 33 and 67, these claims are directed to protecting computer assets 
from unauthorized access. Applicant claims, inter alia, receiving an interface control command in a 
protection engine in a south bridge. The security risk of the interface control command is 
determined. If the interface control command is determined to be a security risk, then the source of 
the command is authenticated. An interface control command that is a determined security risk is 
then inhibited or executed based on whether or not the source of the command is authentic (See, for 
example, Claim 33, lines 3-10). In Claim 67, Applicant teaches a south bridge comprising an 
interface controller and a protection engine operable to determine if a source of an interface control 
command is authentic and to selectively allow or inhibit execution of the interface control command 
by the interface controller depending on whether or not the source of the interface control command 
is authentic. (See Claim 67, lines 3-11). Most particularly, the cited portion of Fisherman et al. is 
silent on receiving an interface control command in a protection engine in a south bridge or a south 
bridge that comprises an interface controller and a protection engine operable to authenticate 
interface control commands. There is no discussion in Fisherman et al. of a protection engine in a 
south bridge or of a protection engine and an interface controller in a south bridge. Therefore 
features of Applicant's claimed invention are not taught or suggested by Fisherman et al. 
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Accordingly, independent Claims 1, 64, and 70 are allowable, and the dependent claims add 
additional novel and non-obvious subject matter and should likewise be allowable. 

Claims 13-17, 28-32, 40-44, and 54-58, stand rejected under 35 U.S.C. 103(a) as being 
unpatentable over Fisherman et al. in view of Glossary of Information Technology Acronyms and 
Terms (here within GIT AT). In regards to Claims 13-17, 28-32, 40-44, and 54-58, Applicant 
references the relevant remarks above. The GITAT reference provides cursory definitions of 
system input-output (I/O) terms. The GITAT reference does not teach or suggest either (1) 
determining if an access request is a security risk, determining a switch state, and then determining 
whether to execute a determined security risk access request based on a determined switch state or 
(2) including in a south bridge a protection engine operable to authenticating interface control 
commands. Accordingly, the dependent claims add additional novel and non-obvious subject 
matter and should be allowable. 

Claims 18, 25, 26, 51, and 52, stand rejected under 35 U.S.C. 103(a) as being unpatentable 
over Fisherman et al. and GITAT as applied to Claims 1 and 13 above, and further in view of Davis 
(USP 6,205,547). In regards to Claims 18, 25, 26, 51, and 52, Applicant references the relevant 
remarks above. Davis is directed to a computer managing system. However, Davis does not teach 
or suggest either (1) determining if an access request is a security risk and then determining whether 
to execute the access request based on a switch state or (2) including in a south bridge a protection 
engine operable to authenticating an interface control command and to selectively allow or inhibit 
execution of the interface control command by the interface controller depending on whether or not 
the source of the interface control command is authentic. Accordingly, the dependent claims add 
additional novel and non-obvious subject matter and should be allowable. 

Claims 22, 23, 48, and 49, stand rejected under 35 U.S.C. 103(a) as being unpatentable over 

Fisherman et al. in view of Chen et al. (USP 5,832,208). In regards to Claims 22, 23, 48, and 49, 

Applicant references the relevant remarks above. Chen et al. is directed to an anti-virus software 
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agent. However, Chen et al. do not teach or suggest either (1) determining if an access request is a 
security risk and then determining whether to execute the access request based on a switch state or 
(2) including in a south bridge a protection engine operable to authenticating an interface control 
command and to selectively allow or inhibit execution of the interface control command by the 
interface controller depending on whether or not the source of the interface control command is 
authentic. Accordingly, the dependent claims add additional novel and non-obvious subject matter 
and should be allowable. 

Claims 62 and 63 stand rejected under 35 U.S.C. 103(a) as being unpatentable over 
Fisherman et al. in view of Applied Cryptography 2"d Edition (here within AC). In regards to 
Claims 62 and 63, Applicant references the relevant remarks above. AC is directed to an anti -virus 
software agent. However, AC does not teach or suggest either (1) determining if an access request 
is a security risk and then determining whether to execute the access request based on a switch state 
or (2) including in a south bridge a protection engine operable to authenticating an interface control 
command and to selectively allow or inhibit execution of the interface control command by the 
interface controller depending on whether or not the source of the interface control command is 
authentic. Accordingly, the dependent claims add additional novel and non-obvious subject matter 
and should be allowable. 

Reconsideration and withdrawal of the rejection of the claims is respectfully requested and a 
Notice of Allowance is respectfully requested. 



Vedder, Price, Kaufman & Kammholz, P.C. 
222 North LaSalle 
Chicago, Illinois 60601-1003 
312/609-7500 
312/609-5005 Facsimile 
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